Information security in the cloud: Should we be using a different approach?
Abstract:
Since the inception of cloud computing, security researchers have been active in addressing the question of cloud information security, which has seen the development of a wide range of technical solutions. The same can be said for non-cloud information security research which has been active for a far longer period of time. Yet, year on year, security breaches continue to increase, both in volume and in value. The business architecture of a company comprises people, process and technology. Is it not time to consider a different approach?
Company Management Approaches — Stewardship or Agency: Which Promotes Better Security in Cloud Ecosystems?
Abstract:
Historically, companies have been managed under the principles of agency theory. There is evidence to suggest that the complexity of modern computing systems, and in particular cloud computing systems, has become so convoluted that the principles of agency theory can no longer cope. We suggest that the adoption of stewardship theory for cloud security can present a possible credible alternative that can deliver much better results for the security of all cloud users, particularly in the long run.